CVE-2015-3771

Vulnerability

A memory corruption vulnerability exists in the IOFireWireFamily kernel extension in Apple OS X. The issue affects OS X Mavericks v10.9.5 and OS X Yosemite v10.10 through v10.10.4. The vulnerability can be triggered via unspecified vectors, leading to memory corruption within the kernel. The exact code path and required conditions are not disclosed in the available references.

Exploitation

Exploitation requires local user access to the system. No additional authentication or user interaction beyond local login is necessary. The attacker can trigger the vulnerability through unspecified vectors, likely involving crafted input to the IOFireWireFamily driver. The lack of public details prevents a precise sequence of steps, but the attack surface is limited to local users.

Impact

Successful exploitation allows a local attacker to gain elevated privileges, potentially achieving kernel-level code execution, or to cause a denial of service through system memory corruption. The impact is limited to the local system; remote exploitation is not possible.

Mitigation

Apple addressed this vulnerability in OS X Yosemite v10.10.5 and Security Update 2015-006 [1]. Users should update to the latest version of OS X. No workarounds are documented. The vulnerability is not listed on the CISA Known Exploited Vulnerabilities (KEV) catalog.